FINRA Warns of Phishing Attacks

Mar 11, 2021 8:16:40 AM By Stu Sjouwerman

The Financial Industry Regulatory Authority (FINRA) has warned of a phishing campaign that’s trying to trick users into responding to a phony regulatory non-compliance issue. The emails ...

Fake reCAPTCHA Found in Phishbait

Mar 10, 2021 8:21:18 AM By Stu Sjouwerman

Researchers at Zscaler warn of an ongoing phishing campaign targeting executives with fake voicemail notifications. More than half of the phishing emails have targeted organizations’ vice ...

Phishing Attacks Continue to Impersonate Trusted Brands to Deceive Potential Victims

Mar 5, 2021 4:00:12 PM By Stu Sjouwerman

The use of impersonation in phishing attacks helps to establish credibility and a sense of ease. New data shows exactly how the bad guys are using this tactic to their advantage.

Phishing Scammers Send a Fake “Private Shared Document” as the Initial Attack Vector for Stealing LinkedIn Credentials

Mar 5, 2021 3:55:42 PM By Stu Sjouwerman

A new social engineering scam demonstrates how cybercriminals are both evolving their tactics while still using tried and true methods that just work to attain their goals.

Most Phishing Emails Are After Credentials

Mar 4, 2021 8:22:48 AM By Stu Sjouwerman

57% of phishing emails in 2020 were designed for stealing credentials, according to Cofense’s most recent Annual State of Phishing Report. Meanwhile, just 12% of phishing attacks last ...

POTRAZ Warns of Phishing Scams

Mar 3, 2021 9:42:20 AM By Stu Sjouwerman

The Postal and Telecommunications Regulatory Authority of Zimbabwe (POTRAZ) has issued a warning regarding an increase in email and SMS phishing attacks, the Chronicle reports. Dr. Gift ...

By Their Poor Idiomatic Control Shall Ye Know Them

Mar 2, 2021 8:24:52 AM By Stu Sjouwerman

A new phishing campaign is impersonating Zoom in order to steal users’ Outlook credentials, according to researchers at GreatHorn. The attackers are using phishing URLs that spoof Zoom’s ...

[HEADS UP] New Dutch Data Breach Report Warns of Explosive Increase in Cyber Attacks and Stolen Personal Data

Mar 1, 2021 10:39:15 AM By Stu Sjouwerman

The Dutch Data Protection Authority (AP) recently measured the number of reports of data theft in 2020 and the number of attacks skyrocketed. The report documented that it increased no ...

New York State Education Department Warns of Phishing Campaign

Mar 1, 2021 9:55:30 AM By Stu Sjouwerman

The New York State Education Department (NYSED) released an advisory warning that scammers are impersonating its employees in an attempt to steal social security numbers and money. The ...

Phishing Attacks Double in 2020 While Carrying the Highest Month of Attacks on Record

Mar 1, 2021 9:32:45 AM By Stu Sjouwerman

The latest data from the Anti-Phishing Working Group (AWPG) shows massive gains in phishing attacks in Q4 of last year, quantifying the growth and setting the expectation of what’s to ...

Microsoft Dominates as the Most Impersonated Brand in Phishing Attacks

Mar 1, 2021 9:32:10 AM By Stu Sjouwerman

New data from phishing detection vendor Inky highlights which brands are most often used by cybercriminals in phishing attacks that will give them the edge needed for a successful phish.

[Heads Up] New Ryuk Ransomware Strain Now Worms Itself To All Your Windows LAN Devices

Mar 1, 2021 7:00:00 AM By Stu Sjouwerman

A new Ryuk strain has a worm-like feature that allows it to spread to all other devices on victims' local networks. It was discovered by the French CERT, their national cyber-security ...

[Heads Up] Ransomware and Phishing Attacks Are Not Going Away in 2021

Feb 26, 2021 8:59:06 AM By Stu Sjouwerman

According to three reports published last week, the bad guys have improved their popular tactics with phishing and ransomware attacks. The attacks involving fake COVID-19 scams and remote ...

Phishing Catch of the Day: Your Inbox Will be Deactivated

Feb 26, 2021 8:00:00 AM By Dylan White

In this series, our security experts will give a behind the scenes look at phishing emails that were reported to PhishER, KnowBe4's Security Orchestration, Automation and Response (SOAR) ...

Phishing Targets Industrial Control Systems

Feb 25, 2021 8:31:12 AM By Stu Sjouwerman

Phishing continues to be a primary initial access vector in cyberattacks against industrial control systems, according to researchers at Dragos. Out of the fifteen threat groups tracked ...

Bogus FedEx and DHL Phishbait

Feb 24, 2021 8:29:14 AM By Stu Sjouwerman

Researchers at Armorblox describe an ongoing phishing campaign that’s using phony FedEx and DHL shipping notifications as phishing lures.

Running Headfirst Into a Breach

Feb 23, 2021 2:00:35 PM By Javvad Malik

The pandemic changed the fortunes of many organisations. Perhaps none so much as Zoom, which has found itself becoming a noun synonymous with any form of video call.

More NHS-Themed COVID-19 Vaccine Phishing

Feb 23, 2021 8:21:48 AM By Stu Sjouwerman

A phishing campaign spoofing the UK’s National Health Service has surged its output, Infosecurity Magazine reports. Researchers at Mimecast warn that the attackers behind the campaign are ...

U.K. Phishing Attack Targets Those Seeking the COVID-19 Vaccine

Feb 19, 2021 1:21:03 PM By Stu Sjouwerman

This latest phishing scam impersonates the UK’s National Health Service, telling recipients that are eligible for the vaccine in order to collect valuable banking and credit card details.

Be on the Watch for W-2 Phishing Scams!

Feb 19, 2021 1:20:58 PM By Stu Sjouwerman

With tax season just around the corner, this simple, yet effective social engineering theme is perfect to get users to respond to phishing attacks exactly the way the bad guys want.

Security Awareness Training Blog

Phishing Blog

View Topics